Consulting services

My information security / cybersecurity consulting services include:
  • Governance, risk management, and compliance (GRC)
  • Security Threat and Risk assessments (STRAs)
  • Risk management and assessments
  • Third party risk management, including cloud security
  • Resilience, business continuity, disaster recovery
  • Compliance, privacy
  • Security program design, organization, and business tie-in
  • Security policies creation and management
  • Security architecture and business bridging
  • Security controls design
  • Security awareness training
  • All to mitigate risks like phishing, ransomware, malware, cloud risks, network and device risks, privacy, and other data breaches.
These services can be provided on a project basis and/or an ongoing part-time basis, for small to medium businesses, and a discounted rate applies for non-profits.  A certain subset of these services apply to high net worth (HNW) individuals and families.